[ppml] question about 2006-3
In trying to form my own opinion about 2006-3, I am interested in the
answers to some questions.
First I'll start with what I think the problem statement is:
ARIN knows to whom IP address ranges and AS numbers are
assigned/allocated. As far as I know, in the ARIN Internet Resource
Database, there is no association of IP address ranges and AS
numbers. To build Route Origination Attestation (certificates), the
association between IP address ranges, AS numbers, and organizations
The information the ARIN Internet Resource Database lacks may exist
in some other Internet Routing Registry, one predominate example is
the RADB, in the ARIN operated Internet Routing Registry, or only in
the client/LIR/ISP's internal infrastructure.
2006-3 is proposing a mechanism for getting the "missing" data to
where the Route Origination Attestation can be made (ARIN). The
pitfalls are 1) duplication of the data because of this and 2)
whether or not this is required.
Okay, I said I had a question...and I really do.
To ISP's who would be represented by Route Origination Attestations -
are the linkages between IP address ranges and AS numbers "you" are
allocated/assigned already documented in some Internet Routing
Registry? How many have the information in a registry that is not
The reason I ask is that perhaps the solution is for ARIN to retrieve
the information from an Internet Routing Registry. Yes, we'd have to
solve the transitive security issues for that to happen. But it
would get around the problem of duplicate data repositories.
As far as the mandatoriness of all this - that's beyond policy. ARIN
can only offer up the attestations from the what it knows (securely),
it's up to the routing industry to decide if anything is mandatory.
Edward Lewis +1-571-434-5468
Secrets of Success #107: Why arrive at 7am for the good parking space?
Come in at 11am while the early birds drive out to lunch.